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Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 
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- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1704(b). J; 

Status | 

^ i 

I )^ Responsive to communication(s) filed on 14 September 2004 . ;| 
2a)D This action is FINAL. 2b® This action is non-finair 

3) Q Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) ^ Claim(s) 1-101 is/are pending in the application. 

4a) Of the above claim(s) 59-89 is/are withdrawn from consideration. 

5) \3 Claim(s) is/are allowed. 

6) IEI Claim(s) 1-58 and 90-101 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) Q Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10)D The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

I I )□ The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-1 52. 

Priority under 35 U.S.C. § 119 

12)D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)D All b)Q Some * c)Q None of: 

1 .Q Certified copies of the priority documents have been received. 

20 Certified copies of the priority documents have been received in Application No. . 

3.Q Copies of the certified copies of the priority documents have been received in this National Stage 
application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 



1 . Applicant elected Group I, claims 1-58, without traverse in the paper, filed on 
September 14, 2004. Claims 59-89 are withdrawn. Pending claims 1-101 . Claims 1-58 
presented for examination for this office action. 



Claim Objections 

2. Claims 29-30 are objected to because of the following informalities: between 
claim 29 and 30, line space is needed. Appropriate correction is required. 



Claim Rejections - 35 USC § 102 



3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351(a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21(2) 
of such treaty in the English language. 



4. Claims 1-58 and 90-101 are rejected under 35 U.S.C. 102(e) as being 
anticipated by Chang et al (U.S. Patent No. 6,157,953, hereinafter, "Chang"). 
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With respect to claim 1, Chang discloses, database (user profile data repository, 
col. 4, lines 7-27) including at least one user object (user profile data, col. 4, lines 7-27) 
for a user, the user object having a corresponding safe object (user identifier, col. 3, 
lines 13-67 to col. 4, lines 1-29) in the database (user profile data repository, col. 4, 
lines 7-27) for the user, the safe object containing at least one profile administered by 
the user, each profile including digital identity information provided by the user (user 
identifier, col. 3, lines 13-67 to col. 4, lines 1-29, access control mechanism derives a 
list of services to which the system administrator associated with the identifier and 
password has administrative access). 

With respect to claim 2, Chang discloses, one safe object contains more than 
one user-administered profile and different profiles provide sets of different digital 
identity information about the user, see (col. 4, lines 7-27). 

With respect to claim 3, Chang discloses, the safe object also contains at least 
one user-administered contact, each contact representing an entity outside the user's 
safe which receives controlled read access to digital identity information from at least 
one of the profiles, see (col. 6, lines 11-49). 

With respect to claims 4-7, Chang discloses, safe object also contains at least 
one drop box object, one application object with settings for an application, one view 
object, at least one access object, see (col. 6, lines 1 1-49). 



Application/Control Number: 09/670,783 



Art Unit: 2162 



Page 4 



With respect to claims 8-9, Chang discloses, web server and an identity server, 
the identity server communicate using encrypted user names, see (col. 6, lines 11-49). 

With respect to claims 10-13, Chang discloses, web server and the identity 
server are secured by a firewall, an identity server appliance, a zero-byte client, see 
(col. 6, lines 11-49). 

With respect to claims 14-20, Chang discloses, system comprises a provider 
model for access to the database, and the provider model abstracts the details of a 

* 

particular directory and storage protocol, access to the cfatabase, and the abstract 

i 

model offers a hierarchical storage system in a representation that includes a user, a 

I 

container, and data, programmatic interface to identity items and operations that 
correspond generally to directory service objects, wherein the database includes 
multiple safe objects contained in a vault object, each vault object contains at least one 
user safe object, and objects contained by the safe objects are federated to provide 
controlled access between the vault servers, wherein the objects are federated using a 
Universal Resource Identifier which specifies at least a protocol, a host, a path, and an 
object and digital business card application object having a corresponding profile object 
which includes digital identity information provided by the user, see (col. 1 , lines 5-67 to 
col. 2, lines 1-65). 
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With respect to claims 21-28, Chang discloses, system comprises a means for 
one user to receive updated profile information of another user using a link to the 
database partitioned directory services database, characterized in that it provides an 
account creation service which creates a new account for a user based on a template, a 
safe management service which provides an administrative tool to manage and 
maintain safe objects, schema management service which permits an administrator to 
at least view a directory service schema, batch account creation service which creates 
several accounts at one time, install service which permits one to install and configure 
an identity server, backup and restore service which allows one to backup and restore 
at least one safe object, see (col.1 , lines 5-67 to col. 2, lines 1-65). 

With respect to claims 29-30, Chang discloses, system comprises system is 
further characterized in that it provides a safe advisor service which allows one to verify 
the integrity of a safe object, legal recovery tool which recovers digital identity 
information for forensic use, data demoralization service which facilitates data 
transformation on database fields, see (col. 1, lines 5-67 to col. 2, lines 1-65). 

With respect to claims 31-41 , Chang discloses, system provides an authorization 
service which allows a process to verify information gathered from a user registration 
form, profile discovery and publishing service which allows users to publish at least a 
portion of their profile information, form fill-in service which allows a user to have the 
service in at least part of an online form with information from one of the user's profile 
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objects, form conversion service which assists a webmaster in converting existing forms 
to standardized field names, install service which installs servlets on a web server, 
identity exchange service for portions of a privacy protection protocol, chat service 
which sets up chat rooms so users can communicate with each other in real time, see 
(col. 3, lines 15-67 to col. 4, lines 1-25). 

With respect to claims 42-49, Chang discloses, presence service which lets 
users specify where they are and allows them to discover another user's presence 
information, anonymous remailer service which allows users to choose different email 
addresses for different profiles, anonymous browsing service which allows a user to 
browse a network in an anonymous fashion to prevent sites from collecting user identity 
information, infomediary service which facilitates creating an infomediary, tracking IP 
addresses in order to selectively publish the last known IP address of a user, underlying 
directory service and an underlying file system in order to enforce access controls on 
web pages published by users, email services, encodes contact relationship 
information in the user's email address, see (col. 3, lines 15-67 to col. 4, lines 1-25). 

With respect to claims 50-58, Chang discloses, system uses profiles to filter 
email sent to the user, for determining whether a user logging in at a third party web site 
is registered as a user of the system, for logging the user into the system if the user is 
registered, and a means for registering the user and logging the user in if the user was 
not registered, for registering the user and logging the user in comprises a means for 
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capturing user login information for the third party web site, user digital identity 
information is only made available to a partner site if the user has flagged the 
information as public, embossed icon which provides a transaction history, user 
authentication mechanism, launch point for launching application, non-repudiation 
feature whereby an administrator cannot change a user password and then log on as 
the user, see (col. 3, lines 15-67 to col. 4, lines 1-25, col. 5, lines 13-67 to col. 6, lines 1- 
65). 

With respect to claims 90 and 98, Chang discloses, vault for storage (user profile 
data repository, col. 4, lines 7-27) of one or more safes of digital identities (user profile, 
Information relating to each user is stored in database 212 and information entered by a 
user is authenticated against this information. The information, or credentials, if verified, 
is passed through a CGI program to the service hosts indicated by the user. Once 
received by the service hosts the information is re-authenticated against the user profile 
in the database on behalf of the system administrator; in other words, this is done 
"behind the scenes" without intervention or any extra steps from the user. The user only 
has to log on (i.e. enter certain information such as name and password) to the 
management console through a browser once and this information is passed on to the 
service hosts automatically), see (col. 12, lines 32-43), the vault including an access 
protocol layer (col. 6, lines 1-36), an identity server layer (col. 6, lines 1-36, access 
control for servers), and an identity manager layer (fig. 7, administrator right for user, 
col. 6, lines 37-67 to col. 7, lines 1-34). 
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With respect to claims 91-94, Chang discloses, access protocol layer includes 
one or more protocols selected from LDAP, XML, RPC-over-HTTP, XDAP or SMTP, 
wherein the identity server layer serves as an NDS access point, wherein the identity 
server layer maintains access rights to the digital identities, wherein the identity 
manager layer includes NDS authentication and authorization that controls access to 
the digital identities, see (col. 5, lines 13-67 to col. 6, lines 1-65). 

With respect to claims 95-97, Chang discloses, identity manager layer has a 
secret store, an identity server, apportioned between a client, a web server and an 
identity server, including servlets and applets, comprising a vault for secure storage of 
one or more safes of digital identity profiles, see (col. 5, lines 13-67 to col. 6, lines 1-65, 
col. 7, lines 4-67 to col. 8, lines 1-67). 

With respect to claims 99-101 , Chang discloses, vault for secure storage of one 
or more safes of digital identity profiles, the vault havingfan access protocol layer, an 

i 

identity server layer and an identity manager layer, zerolbyte client interface, client 

i 

application interface, user object and a corresponding safe object, the safe object 
containing at least one profile of the digital identity profiles administered by a user, see 
(col. 5, lines 13-67 to col. 6, lines 1-65, col. 7, lines 4-67 to col. 8, lines 1-67). 
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Conclusion 



5. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

Bunney et al (U.S. Patent No. 6,446,1 12) discloses the system for terminals (3) 
can communicate with each other by means of an IRC server (40). The user terminal (3) 
can send a command to a chat proxy (39). The chat proxy (39) is connected with a 
session manager (23) to translate any address longer than nine characters (limit of the 
IRC protocol) to a code with a maximum length of nine characters. The chat proxy (39) 
can cache the result of the conversion in a storage device (42). The chat proxy (39) 
then sends (41 ) an IRC command to the IRC server (40) together with a code having a 
maximum number of nine characters. The chat proxy (39) according to the present 
invention therefore allows a translation process, the provision of semi-private chat 
rooms with an additional access control and a supply of supplemental chat room 
attributes. 
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Contact Information 



6. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Isaac M Woo whose telephone number is (571 ) 272- 
4043. The examiner can normally be reached on 8:00-5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, John E Breene can be reached on (571) 272.4107. The fax phone number 
for the organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 

IMW 

December 29, 2004 




